A trusted component is suggested to be added to off the shelf computing systems such as PCs or smartphone providing secure functions for access management and credential protection—safe authentication, maintaining session integrity and validation of content modification. An additional advantage of the solution that it detects malware/hacking attempts on first try allowing of taking action while oblivious to the malware/hacker to avoid retaliation.

PTO Wrapper PDF
Dossier Espace Google
Patent
   11184763
Priority
Apr 27 2017
Filed
Aug 02 2019
Issued
Nov 23 2021
Expiry
Sep 17 2037
Extension
143 days
Inventors
Barkan, Mo…
Assg.orig
Assg.curr
Entity
Small
Referenced by
0
References
12
Maint.:
currently ok
CROSS REFERENCE TO R…
FIELD OF THE TECHNOL…
SUMMARY OF THE DISCL…
BRIEF DESCRIPTION OF…
DETAILED DESCRIPTION
3. A network node comprising:
any of hardware processors, memory storing data and programs or combination thereof; and
a computing system programs stored in the memory supporting a secured site;
the secured site communicating with a the secured computing system comprising a hardware computing device and a legacy system;
the secured site supports a secured communication to the hardware computing device, which is a trusted component of a the secured computing system; and
the secured site receives, from the hardware computing device, out-of-band information including any of a URL, a user identification, a password, an account number, a credit card number, a text messages, a sampled voice, video streams, a biometric, an encrypted files, or combination thereof;
the secured site supports a program supporting communication with a the legacy system of the secured computing system; and
the functions including any of user authentication, session integrity, content validation, detect hacking attempt or combination thereof;
the secured site communicates with the hardware computing device, wherein the communication is out-of-band and not accessible by the legacy system, sending data to the hardware computing device or receiving data from the hardware computing device;
the secured site manages a single session seamlessly by means of simultaneously communicating with the hardware computing device and the legacy system, and serves as a proxy or service site.
1. A device comprising:
a hardware computing device, including any of a processor, a memory or combination thereof and wireless communication components;
the hardware computing device communicating wirelessly with a legacy computing system, the legacy computing system including any of a personal computer, a notebook, a tablet, a smartphone, a server, a watch, a ring or combination thereof;
the hardware computing device communicating wirelessly with a network, wherein the communication is out-of-band and not accessible by the legacy computing system;
the hardware computing device allows any of an user input data, user output data or combination thereof and communicate any of the user input data or the user output data wirelessly;
wherein the user data comprising any of a URL, a user identification, a password, an account number, a credit card number, a text messages, a sampled voice, video streams, a biometric, encrypted files, or combination thereof;
the hardware computing device supporting security functions including any of authentication, storing sensitive information, detecting character strings, seeding, encryption, decryption, sending data to the legacy computing system, or combination thereof;
the hardware computing device communicates with a secured site, sending data to the secured site or receiving data from the secured site;
the hardware computing device sending out-of-band information to the secured site any of a URL, a user identification, a password, an account number, a credit card number, a text messages, a sampled voice, video streams, a biometric, an encrypted files, or combination thereof;
the hardware computing device receiving out-of-band information from the secured site;
wherein the secured site manages a single session seamlessly by means of simultaneously communicating with at least two IPs and serves as a proxy or service site.
5. A method for secure communication between a hardware computing device and a secured site, wherein the hardware computing device comprising hardware processor or memory;
a secured site hosted by a first computing system;
a legacy system hosted by a second computing system;
a secured computing system comprising the hardware computing device and the legacy system;
the hardware computing device is configured to communicate wirelessly with a network, wherein the communication is out-of-band and not accessible by the legacy computing system;
allowing, by the hardware computing device, any of an user input data, user output data or combination thereof and communicating any of the user input data or the user output data wirelessly, wherein the user data comprising any of a URL, a user identification, a password, an account number, a credit card number, a text messages, a sampled voice, video streams, a biometric, encrypted files, or combination thereof;
the hardware computing device is configured to communicate with a secured site, wherein the communication with the secured site comprising sending data to the secured site or receiving data from the secured site;
supporting, by the hardware computing device, security functions including any of authentication, storing sensitive information, detecting character strings, seeding, encryption, decryption, sending data to the legacy computing system, or combination thereof;
sending, by the hardware computing device, out-of-band information to the secured site including any of a URL, a user identification, a password, an account number, a credit card number, a text messages, a sampled voice, video streams, a biometric, an encrypted files, or combination thereof;
receiving, by the hardware computing device, out-of-band information from the secured site, wherein the secured site manages a single session seamlessly by means of simultaneously communicating with at least two IPs and serves as a proxy.
2. The device of claim 1, wherein the hardware computing device communicates over wires with any of legacy system, network, user or combination thereof.
4. The network node of claim 3, wherein the secured site communicates with a serviced site to support functions including any of user authentication, session integrity, content validation, hacking attempt or combination thereof.
CROSS REFERENCE TO RELATED APPLICATIONS

This application is a continuation-in-part of U.S. patent application Ser. No. 15/499,848, filed on Apr. 29, 2017 and titled “Access Management and Credential Protection”, which is a continuation-in-part of U.S. patent application Ser. No. 14/606,992, filed on Jan. 27, 2015 and titled “Secure Computer Architectures, Systems, and Applications,” which is a continuation-in-part of U.S. patent application Ser. No. 14/040,352, filed on Sep. 27, 2013 and titled “Secure Computer Architectures, Systems, and Applications,” which claims the priority benefit of U.S. Provisional Application Ser. No. 61/744,677, filed on Oct. 2, 2012 and titled “Computer Architecture, System and Applications,” and this application claims the benefit and priority of U.S. Provisional Patent Application Ser. No. 61/965,313 filed on Jan. 28, 2014 and titled “Add-on To Existing Computing Systems to Enhance Their Security,” all of which are hereby incorporated by reference herein in their entireties, including all references cited therein.

FIELD OF THE TECHNOLOGY

Embodiments of the disclosure relate to computer security. More specifically, but not by way of limitation, the present technology provides secure computing architectures, systems, and applications. In some embodiments, the present technology employs both trusted and legacy hardware environments that protect sensitive user information and increase data security, privacy, and safety.

SUMMARY OF THE DISCLOSURE

According to some embodiments, the present technology is directed to a system, comprising: (a) a legacy environment comprising an off-the-shelf computing system; (b) a hardware computing device, serves as trusted environment, that communicates with a network and the legacy environment; and (c) the user communicating wirelessly with the hardware computing device which comprises security functions such as authentication.

The invention allow for the protection—security, safety, and privacy—of a user of a malware infected legacy computing system from divulging sensitive information that risks the user and may cause him damage.

According to other embodiments, the present technology is directed to a system, comprising: (a) a mobile computing device; and (b) a trusted environment device that can communicatively couple with the mobile computing device, the trusted environment device being configured to communicate with a network directly to prevent the mobile computing device from accessing user sensitive information thus the trusted environment device preventing the mobile computing device from executing a malicious attack.

A secured site supports the secured communication by user of the combined mobile and trusted devices to the secure site or serviced sites via the secured site.

BRIEF DESCRIPTION OF THE DRAWINGS

The accompanying drawings, where like reference numerals refer to identical or functionally similar elements throughout the separate views, together with the detailed description below, are incorporated in and form part of the specification, and serve to further illustrate embodiments of concepts that include the claimed disclosure, and explain various principles and advantages of those embodiments.

The methods and systems disclosed herein have been represented where appropriate by conventional symbols in the drawings, showing only those specific details that are pertinent to understanding the embodiments of the present disclosure so as not to obscure the disclosure with details that can be readily apparent to those of ordinary skill in the art having the benefit of the description herein.

In the following the subject of this innovation, an hardware computing device could be referred to as trusted device, trusted environment, trusted component or integrated trusted computing device

Legacy system may be also referred to as legacy environment or legacy computing system

FIG. 1 is an exemplary hardware computing device which serves as an add on wireless trusted environment;

FIG. 2 depicts the integration of the hardware computing device with the internet to secure an off the shelf legacy computing system communication with internet sites

FIG. 3 depicts the key components of the suggested implementation of a secured system

FIG. 4 depicts a structure of a typical legacy computing architecture that is implemented in computing systems such as the hardware computing device and the legacy computing system

FIG. 5 depicts the hardware computing device here named integrated trusted computing device

FIG. 6 depicts the wireless version of the network of FIG. 3—key components of the suggested wireless secured system. The hardware computing device here is named a trusted component

FIG. 7 depicts the network of FIG. 6 taking advantage of phone hotspot

FIG. 8 secured site integration in a secure implementation

FIG. 9 depicts an exemplary implementation as credit card format
DETAILED DESCRIPTION

FIG. 1 depicts a device comprising a hardware computing device, including any of a processor, a memory or combination thereof and wireless communication component;

The basic two forms for the hardware computing device 100 that serves as trusted environment, may also termed trusted component. It could be a full featured computing system as described in FIG. 4. The diagram describes key elements 110 of the device which include a Processor 111, if the device supports a fully featured computing system or memory 112 based device to secure storage of sensitive information. The device includes the support components to allow the required operation and any person skilled in the art knows how to implement such systems—the challenge are requirements and functions implemented by the device as detailed for some preferred embodiments here after.

The hardware computing device includes communication components 120 interfacing an off the shelf legacy computing system 130 as described in FIG. 2 and allow input and output of data by a user 140 as described in FIG. 2. The key characteristic of the communication components is to support wireless communication as further discussed in the detailed description of FIG. 2. Though the key purpose of communication components 120 is wireless in some embodiments wired communication may be supported to either the legacy computing system 120 or the user 140.

FIG. 2 depicts the hardware computing device 100 communicating 162 wirelessly with a legacy computing system 130, the legacy computing system 130 including any of a personal computer, a notebook, a tablet, a smartphone, a server, a watch, a ring or combination thereof;

the hardware computing device 100 communicating 163 wirelessly with a network;

any of an input data, output data or combination thereof communicating 161 wirelessly with the hardware computing device 100, where the communication 161 not accessible by the legacy computing system 130;

the hardware computing device 100 capable of supporting security functions including any of authentication, storing sensitive information, detecting character strings, seeding, encryption, decryption, sending data to the legacy computing system 130, or combination thereof.

FIG. 2 depicts the integration of the hardware computing device 100 in a preferred practical implementation.

The hardware computing device 100 communicates the legacy computing system 130 via a wireless 162 link. This 162 link could be WiFi, Bluetooth, ZigBee or any other type—ultrasound, IR or other. The legacy computing system 130 may be any of computing system—Personal computer, notebook, tablet, smartphone, server, work station . . . .

A user 140 communicates with the hardware computing device 100 by means of the 161 wireless link. The user 140 may input data or receive data from the hardware computing device 100. The wireless input may be achieved by any of voice or audio (a microphone installed in the hardware computing device 100), gesture or lip read (a camera installed in the hardware computing device 100) . . . . Those are just examples of such communication and a person skilled in the art could find other means for wireless input. Such communication does not negate direct input means—such as switches, touchpad, keyboard . . . .

The user 140 further may communicate with the legacy computing system 130 or the network 140 via the hardware computing device 100 supporting secure operation as described later.

The user 140 may get receive information from the hardware computing device 100 by means of audio (a speaker installed in the hardware computing device 100) or images/text (a display installed in the hardware computing device 100).

The integrated hardware device 100 is connected to the network 150 (such as Internet) by means of a wireless link 163 that may be implemented by means of WiFi. This will allow the user 140 to communicate directly, without the legacy computing system 130 accesses to the communication, to secured site 230 that is presented in FIG. 3

Various security and processing functions may be supported, but not limited to, by the hardware computing device 100:

1. Authentication—by means of voice recognition, password voiced by the user as a word or character at a time, by means of the switches, by the lip reading, gesture, finger print or any other that are available and may be implemented by persons skilled in the art.

2. Storing sensitive information—this information may be input by the user 140 or from the secured site 230 in FIG. 3. Sensitive data may be but not limited to: passwords, user biometric signatures (voice, face, finger print . . . ), credit cards number, bitcoin and other crypto currency information, encryption and decryption codes, URLs. Sensitive data may be programs such as but not limited to—encryption/decryption, characters strings detector and seeding (such as but not limited to—passwords, account numbers, URLs, credit cards numbers . . . ), or programs to be download to the be down loaded to the legacy computing system 130 such as but not limited to—boot up, BIOS, peripherals drivers (keyboard, camera . . . ), favorite lists . . . .

3. Detecting character strings—this specific program will detect input that is sensitive and should not be transferred to the legacy computing system 130. Data (character strings) may be processed by the hardware computing device 100 or transferred as is to a secured site 230 as described in FIG. 3

4. Seeding—this function allow replacement of character strings with strings that will support detection of attempts by malware infecting the legacy computing system 130 to use directly or by communicating with a remote operator (hacker) sensitive information to impact the safety or privacy of the user and cause monetary or other damage to the user 140.

5. Encryption and decryption—the use of hardware computing device 100 for these function will avoid exposure of encrypted files to the legacy computing system 130 will reduce the risk of divulging sensitive information where the codes and keys are maintained and kept in the hardware computing device 100

6. Sending data to the legacy computing system 130 supports the communication of the user 140 with the legacy computing system 130 via the hardware computing device 100

FIG. 3 depicts a general block diagram, the hardware computing device 210, named here trusted component, integrated with the internet 250 network and the trusted component 210 communicates with a legacy computing system 220, named here just legacy system. The legacy system 220 is integrated with the internet 250 network. A secured site 230 supports secured communication of the trusted component 210 to internet 250 sites, such as the serviced site 240.

Peripheral input devices (such as but not limited to—keyboard, camera, microphone, mouse, touchpad . . . ) or output devices (such as but not limited to—display, speaker, LEDs . . . ) may be connected to trusted component 210 or legacy system 220.

Such input and output devices allow the user to communicate with the secured 230 and serviced 240 sites.

The legacy system 240 allow for the user to communicate with all internet 250 (or any other network to which it may be connected) by the legacy means and even directly to the serviced site 240.

For purpose of clarification, FIG. 4 depicts the basic structure of a computing system, such as the hardware computing device 100/210 or a legacy computing system 130/220.

FIG. 4 outlines the basic structure of a typical computing device which is utilized to implemented the computing device 100 that serves as the trusted environment, the legacy computing system 130, the computing systems on which the secured 230 and serviced 240 sites run or executed

Two components are part of any computing system, CPU 310 and Memory 320

Other components, but not limited to these list, are peripherals 330, I/O 340 and Network 350

In a typical implementation all the computing device components are connected by a BUS 360 that supports transfer of data and addresses between the various components

CPU 310 process data by means of programs stored in the memory 320. The data acquired from the different components of the computing system—memory 320, peripherals 330, I/O 340 and the network 350. Data or processed data may be communicated to the various components mentioned above. The CPU could be structured with various numbers of core processors and for anyone skilled in the art no further elaboration is needed.

Memory 320 stores programs and data and may be implemented by use of various types of memory, such as but not limited to—RAM (Random Access Memory), ROM (Read Only Memory), Dual Ported, and other . . . .

Peripherals 330 are representatives, but not limited to, elements that support various needs of processing or storing of data, such as security functions (such as TPM), memory access, accelerators and others

I/O 340 are representatives of software drivers that support such elements that serve as input devices such as, but not limited to: microphone(s), camera(s), biometric authentication (finger print, iris, face . . . ) . . . and supporting communication such as, but not limited to, USB, Bluetooth or other types of interface.

The network 350 is the software element that allow the computing system to communicate with other computing systems or simplified computing systems that include minimal elements: memory only and drivers for communication or a sensor and digital interface to the network.

It is important to emphasize that any person skilled in the art could construct computing system that are minimal implementations such as CPU 310 only or memory 320 only

FIG. 5 depicts an integrated trusted computing device 400 which may be referred to as trusted environment or trusted device or trusted component or integrated computing device—an integrated trusted computing device.

A full computing system may be implemented as a integrated trusted computing device 400 as depicted in FIG. 5. Specific designs may use partial implementations. A minimal case could be the use of memory only with simple gate array and some firmware. Such implementations may be used to save money when cost consideration lead to minimal designs by limiting functionality.

Simplest Form:

The device could include just memory to store sensitive information such as password and means to communicate with the legacy and the network. The storage of the sensitive information may be made by communication from the legacy or from the network. The information of the network connection, WiFi and a specific service site—the secured site—may be preinstalled even during the manufacturing and sales process of the device. A simple programing mechanism may allow the setup and storing of password. Device ID may be installed. The operation of the device could be for just communicating the sensitive data directly to the secured site: Device ID and password—allowing out of band authentication.

Featured Form:

On the other end of the “hands free” spectrum an integrated trusted computing device may be a single component, encompassed as a hardware device that could be connected to a legacy system by means of an hardware connection, such as USB, or a wireless connection, such as Bluetooth. The device implements a complete computing device as depicts in FIG. 4. The device could operate as a standalone, hands-free apparatus to support access management and credential protection.

Conceivable components of an integrated trusted computing device 400 (termed also as: hardware computing device 100) may be, but not limited to:

A computing environment 410 which include various elements such as described here after but not limited to those:

Legacy interface 420 supports communication of the integrated trusted computing device 400 with a legacy system.

Network interface 430 supports the communication of the integrated trusted computing device 400 with the network and its various nodes.

Integrated sensing device 440 supports connecting I/O devices to the integrated trusted computing device 400, such as but not limited to—keyboard, mic, camera, speakers, display, biometric

The integrated trusted computing device 400, may be used as hands off add on hardware device to legacy systems to support security functions: protect user sensitive data, memory, data communication and such.

The trusted environment is encompassed in the trusted component of the diagram—for hands free operation it might have integrated a microphone, allowing a voice activation operation—thus hands-free.

The trusted component device may be powered by, but not limited to, the legacy system (if connected by a USB means to the legacy system) or may be powered by a battery.

The integrated trusted computing device 400 may be connected to the network via a wireless connection, such as WiFi. If desired, for security reasons, the integrated trusted computing device 400 may be connected to the network by a LAN hardwired connection.

The integrated trusted computing device 400 may have connection to peripheral devices such as keyboard, allowing for secured setting up—storing sensitive information in memory such as, but not limited to: passwords, credit cards, encryption keys, account numbers, SS number, other IDs.

The connection of integrated trusted computing device 400 may be by wireless means, and the need for a keyboard may be removed and a full hands free operation is possible as explained in the following.

Hands Free Operation

The following is a description of one of the preferred embodiments. A person skilled in the arts could find many derivatives and uses that are not going to be detailed here but obvious given the description hereafter. The description does not limit the uses and the potential implementation in any way, on the contrary it provides insight in the potential of the innovation to be applied in various ways to solve and meet a variety of requirements and needs with support of a feature rich implementation where the integrated trusted computing device 400 is connected to different types of peripherals even simultaneously, and secures the user from network attacks that result infection with malware, of the legacy system to which the integrated trusted computing device 400 is connected.

By utilizing a microphone and voice recognition algorithm programed to the integrated trusted computing device 400 a user could be authenticated. The vulnerability of a legacy system of hacker taking control of the legacy and incorporate hacker assisted voice recognition—a task that is complex from the hacker point of view and will be hard for the hacker to implement will be exposed. Password still provided by the voice to text converter in the integrated trusted computing device 400 (the user “tells” the password to the device) will further conceal and protect the operation of the device from malware. the integrated trusted computing device 400 will have conversion to text function (as mentioned in the previous paragraph). Another function supported by the integrated trusted computing device 400 will be voice compression and encryption—allowing for secured voice communication with other users of computing systems. The secure communication could be achieved between two systems that have the integrated trusted computing device 400.

The authentication is a multifactor authentication—voice recognition that identifies the user and password the user say and is captured by the integrated trusted computing device 400 microphone and interprets by the voice to text converter with the additional factors—the device ID number and a session ID that is different for every session.

Other credentials may be used for authentication such as biometric—finger print, iris, facial recognition with capturing components incorporated or connected to the integrated trusted computing device 400.

The use of camera integrated or connected to the integrated trusted computing device 400, will allow such functions as: face recognition, OCR (Optical Character Recognition) conversion of written or typed text in image to digital text, image or video conversion. Function implemented in the integrated trusted computing device 400 or in a secured site to which the raw data is transmitted.

The integrated trusted computing device 400 may include switches and/or LEDs (or similar means) allowing for secure user interface—response to messages on the legacy display or the LEDs notifications.

Smart phone interface that provide communication and/or power, such as but not limited to, USB standard connection will allow the use of the integrated trusted computing device 400 with a smartphone. In case a gadget is designed for the smartphone, it might need to get power from a battery incorporated in the integrated trusted computing device 400 gadget.

Wireless trusted devices will require their power by means of a battery (rechargeable or disposable).

Programming a Trusted Device

The integrated trusted computing device 400 security will be maintained by:

The integrated trusted computing device 400 may appear as a keyboard to the legacy system even though no keyboard is attached to the integrated trusted computing device 400. The legacy system will not have access to the device directly. The user will be able to communicate from the legacy system to the trusted device via a secured site, sending character strings to be processed by the integrated trusted computing device 400.

Malware in the legacy system will not have awareness of the device by observing the connection.

The integrated trusted computing device 400 will be able to send character strings and additional information to the internet or the legacy system.

The following is a list of possible functions supported by the hands-off access management and credential protection device, the integrated trusted computing device 400, but not limited to those functions:

The integrated trusted computing device 400 may be programmed, if the risk of infection is extremely low and acceptable, from the secured site or another site configured for this purpose. The programing will be carried out by controlling the device by voice means or keyboard or others, interfacing the trusted device directly.

FIG. 6 depicts an integration of the integrated trusted computing device 400 (termed trusted component in FIG. 6) with a legacy system via a Bluetooth and the internet via a WiFi router.

The trusted component 510 (an exemplary implementation but not limited to of the integrated trusted computing device 400) is presented to the legacy system as a keyboard, which will allow for safe operation without malware infecting the legacy system detecting its existence.

FIG. 6 depicts a fully wireless implementation of the trusted component 510 that communicates over Bluetooth 530 to a legacy system 520, which may also termed legacy computing system 130. The trusted component 510 communicates with the network (here the Internet 590) with WiFi 550 to a wife router 560.

A secured site 570 communicates with the trusted component 510 and the legacy system 520 via the internet 590

A service site 580 communicates over the internet 590 to the secured site 570

The secured site 570 supports the functionality that allow secure access from the combined computing system of The trusted component 510 and the legacy system 520

The secured site 580 supports such as but not limited to the following functions:

A detailed discussion of the secured site 570 will be farther detailed in the description details for FIG. 8

FIG. 7 depicts the integrated trusted computing device 400, termed here trusted component 610, supporting security functions by interfacing with a smartphone 620 that includes a WiFi hotspot, which will allow the trusted component 610 communication to the internet 690 by means of WiFi communication 640 to the smartphone 620 hotspot which allows access to the cellular network 660 with the LTE 650 communication of the smartphone and from the cellular network 660 to the internet 690.

Though specific wireless communication means are mentioned in the discussion they should be viewed as examples—the cellular communication LTE 650 is one of many cellular systems and the same holds for the Bluetooth 640 and the WiFi 630.

The trusted component 610 communicates with the smartphone 620 via the Bluetooth 630 to provide user input to programs running on the smartphone 620. The trusted component 610 may appear to the smartphone 620 as keyboard or other input means.

As explained before, various contactless/wireless means could be implemented in the trusted component 610 to allow a user communication with the smartphone 620 as example and not limited to—voice to text/key-strokes conversion in the trusted component 610 communicated to programs in the smartphone 620 via the Bluetooth 630 link.

The secured site 670 is accessed by the internet 690 connection—by trusted component 610 by means of the WiFi hotspot in the smartphone 620 while the legacy smartphone 620 communicates with the secured site 670 by the legacy means of LTE 650. Both utilize the cellular network 660 to access the internet 690 and to nodes on the internet 690.

The interface to the internet 690 is accomplished by means of the smartphone 620 that access to the cellular network 660 via the communication LTE 650.

A serviced site 680 may communicate with the secured site 670 that allow for supporting secure operation for the user by means of the trusted component 610 and the smartphone 620—accessing the serviced site 680 via the secured site 670.

FIG. 8 focuses on the integration of the secured site 700 with the trusted component 710 (termed also integrated trusted computing device 400) and the legacy system 720, the legacy system 720 to be any of but not limited to —PC, notebook, smartphone, tablet, server, watch, eye glasses. The trusted component 710 may be a any of but not limited to form factors such as USB stick or credit card.

Though reference in FIG. 8 is made to the internet 730 as the connecting network, the secured site 700 represents implementations that could be with any type of network and even a peer to peer implementation. The description of the functionality may be extended to any implementation in which a user need to communicate securely with another entity—authentication and other functions as will be apparent from the following discussion.

The key to the innovation is that the legacy system 720 is provided with security functions by means of adding the trusted component 710. The combination of trusted component 710 and legacy system 720 operate as a single computing system for a user.

The legacy system 720 is not limited in accessing the internet or other communications and legacy operation is made where the added trusted component 710 is not limiting the legacy system 720 in ant way.

The secured site 700 represents is comprised of programs running on a computer (or distributed between several of them—servers or cloud services).

Secured session 701 supports the communication of the secured site 700 with the trusted component 710, providing out of band communication not accessed by the legacy system 720. The communication is presented by the line 751 which is done directly over the internet. In some cases, as presented for FIG. 7, this communication can take a complex form—trusted component 710 communicates over WiFi to a hotspot of a smartphone, which utilizes the communication of the smartphone to the cellular network and from there to the internet 730.

The communication over the line 751 between the secured session 701 and the trusted component 710 may be any of but not limited to—passwords and seeded passwords, credit cards, URLs, encryption/decryption codes, any key stroke, videos/images, voice/audio, bio metric, encrypted files, account numbers, ID numbers such as social security

The secured session 701 will support any of but not limited to of the following functionality: communicating with the trusted component 710 and the sessions manager 704, storing and retrieval of data from memory, evaluation of data received from session manager against stored information, authentication of the user by means of password (what user knows) or token/ID of the trusted component 710 (what user has) or bio (user features—voice recognition, facial recognition, finger print, IRIS . . . ),

Legacy session 702 supports typical internet 730 session (or appropriate program if not an internet interface is implemented), communicating with legacy system 720 over the typical internet 730 connection 752.

Sessions manager 704 is a program that orchestrates the operation of the system as a whole.

The communication the sessions manager 704 with internet 730 nodes is made by the service session 703 that may support security functions as detailed later

Functionality of the sessions manager 704 may be any of but not limited to—detection of malware infecting the legacy system 720, trigger an action such as warning of hacking attempt, diverting hacker/malware to seeded data and files, support access to files and data as privileged when the secured site 700 provides services, support voice/video communications sessions, the site may support a plurality of cloud applications—word processing, email, presentation, spread sheet, and others.

Specific functionality of sessions manager 704 when supporting a serviced site 740 by means of the service session 703 may include but not limited to—serving as proxy between the service site 740 and the combined computing system comprised of the trusted component 710 and the legacy system 720, deconstructing the session with the serviced site 740 into two sessions—a secured session 701 with the trusted component 710 and a legacy session 702 with the legacy system 720, combining a secured session 701 with the trusted component 710 and a legacy session 702 with the legacy system 720 into a service session 703 communicating with the serviced site 740.

The service session 703 allow the general communication of the secured site 700 with internet 730 nodes and entities.

The service session 703 allow the support of security functions for the serviced site 740. Such functions are any of but not limited to—authentication, secured access, content validation

The communication between the secured site and the various elements is represented by 751, 752, and 753.

The secured site 700 may communicate with any type of secured computing system—from a distributed as this innovation suggested or integrated, where the trusted environment is encompassed in a PCIe card added to a PC or even integration on the IC (silicon) level with the processing unit (CPU—single or multicore)

At least two types of systems communicate with the secure site 700—a legacy system which is assumed untrusted and a trusted environment/hardware which communicate each via a separate physical IP. This in no way limits the number of IPs, physical or virtual that may be used in a single session simultaneously for a single user when benefits may derive such as separating certain applications by different trust levels—an application from Microsoft has trust level higher than a small game provider but less than a fully supported trusted environment—to allow providers of computing system supporting more efficient and high performance systems.

Communication of out of band—communication of the secured site 700 may be via two (or more) separate communication means, for example a notebook may be used as legacy system 720 with communication to the internet by means of a WiFi while the trusted component 710 connected to it via a USB connection communicates with the internet by means of a smartphone hotspot. This allow for further security in case communication is interfered or corrupted.

Burden of security is on the secured site 700 rather than the user—the protection of the user is seamless—meaning that the user does not need to take during operation any specific action. Currently two factor authentication requires the user of taking action—example is the use of codes received on smartphone and keyed by the user to validate password and access attempt by him. With the suggested innovation there is no need for the user to take action—the password and the sue of a dedicated secure band provides the security automatically with multiple authentication as explained in the next paragraph

Id number set for trusted component 710—each trusted component 701 will have a unique ID to identify it (the token function). This ID may be instilled during the manufacturing of the component or by the user during the initialization process—the use of the device for the first time or as an ID for a specific pairing with a specific legacy system 720—or by the secured site 700 during the first initialization. A session ID may be instilled by the secured site 700 at the end of every secured session to be used as another authentication factor at the next secured session.

It is important to realize that the secured site 700 with its programs could be hosted by a secured computing system where the communication to the trusted component 710 (trusted environment) and legacy component 720 (legacy environment) is made by the trusted environment of the secured computing system to support sensitive operations. Such implementation will allow support of secured applications of cloud, such as but not limited to—word processing, presentation, spread sheet, email, encryption/decryption, and others. The content will be handled as sensitive data and securely.

The following detailed example of how the protection of a password is accomplished will help in understanding how the system works and implementation of such solutions for credential protection.

Password Protection Example:

The user of the combined computing system, trusted component 710 and legacy system 720 operates them seamlessly—the only thing that is required from him is to understand that to secure access to the internet 730 he needs to use the trusted component 710 as input device.

The trusted component 710 will be a credit card form factor with Bluetooth and WiFi connections

The legacy system 720 will be a smartphone with an hotspot

Initialization:

Login:

Operation:

The secured site 700 could support security functions for a serviced site 740. The secured site 700 will serve as a proxy site that will use a service session 703 to separate the duplex (bi directional communication) communication with the service site 740 into two duplex sessions—secured session 701 with the trusted component 710 and legacy session 702 with the legacy system 720.

Example of a secured operation with a service site 740—the login page received by the secured site 700 from the serviced site 740 by means of service session 703, is sent and displayed on the legacy system 720 by means of the legacy session 702. The user recognizes the request to key account number and password. By means of the trusted component 710 the user sends the information securely to the secured site 700 by means of the secured session 701. The secured site 700 by means of the service session 703, sends the account number and password (integrated properly into the page) to the serviced site 740.

Worth noting that multifactor operation in here (which could incorporate if desire biometric authentication of the user by means incorporated in the trusted component 710, such as but not limited to—finger print, facial recognition, voice recognition, Iris . . . ) is very different from the typical use of an action required by user such as keying a code received in another channel or a specific token device for the sole process of authentication. This authentication that is carried out once or intermittently during the session still allow malware action. By use of continuous monitoring of the user input by means of the trusted component 710 with reference to the legacy system 720 communication the session continuously is protected and its integrity is maintained even in the presence extremely sophisticated malware.

In the following a specific implementation of the trusted component 710 as a credit card format is presented. It is important to understand that any person skilled in the art could apply the various features described for the trusted card form factor may apply to any type of trusted component 710 and in general to any trusted environment.

FIG. 9 depicts a preferred embodiment in which the trusted component 710 is implemented in a credit card form factor as a trusted card 900.

The card 900 interfaces the legacy system 720 by means of a Bluetooth 910 and the internet by means of a WiFi 920—the WiFi router does not need to be shared with the legacy system 720, as described above.

The trusted card 900 is fully portable between systems where there is an interaction of devices via Bluetooth with legacy systems 720 allowing emulation of input device such as but not limited to, as a keyboard host, implemented in the legacy system 720 and the trusted card 900 appearing as a keyboard to the legacy system 720.

The trusted card 900 may communicate in other ways to the legacy system 720, as acceptable by the legacy system 720—based on the emulation of input devices implemented and supported by the trusted card 900. In any case, the trusted card 900 will not be identifiable by malware infecting the legacy system 900. This is clearly adoptable by any implementation of a trusted component 710 of which the trusted card 900 is an example.

The trusted card 700 will support various functions, such as:

The setting of the trusted card 900 will not require any special training. It will require well established user actions and operations to connect the trusted card 900 to the legacy system 720 and the internet by the means described above for the trusted component 710.

The trusted card 900 will be supported by the secured site 700 that will allow the use of its secure operations to access safely sites on the internet and detect, masquerade, contaminate hackers systems.

Some components of the trusted card 900 depicted in FIG. 9 are, but not limited to:

A secured site 700 will support communication with the user by means of display on legacy system 720 (smartphone to desktop any other) by means, but not limited to, of text, audio/voice, images/video, graphics or any other.

Information could be fed to the legacy system 720 from the secured site 700 via the trusted card 900.

Information could be fed to the secured site 700 from the legacy system 720 via the trusted card 900.

The legacy system 720 may communicate directly with the secured site 700 and display of information from the secured site 720 by means of the legacy system 720 may be altered by various means, such as human test and CAPCHA, to mask and protect content (text, voice, image, video . . . ) from malware infecting the legacy systems 720 and support validation of content authenticity—defeating attempts by malware infecting the legacy system 720 to modify sites, commands or files content, by the malware or hacker controlling the malware.

INVENTORS:

Barkan, Mordecai

THIS PATENT IS REFERENCED BY THESE PATENTS:
Patent Priority Assignee Title
THIS PATENT REFERENCES THESE PATENTS:
Patent Priority Assignee Title
7100195, Jul 30 1999 Accenture Global Services Limited Managing user information on an e-commerce system
8649770, Jul 02 2012 T-MOBILE INNOVATIONS LLC Extended trusted security zone radio modem
20050254440,
20070079012,
20120008786,
20120271686,
20130111211,
20150095918,
20150244699,
20160134599,
20170337145,
20190334884,
ASSIGNMENT RECORDS    Assignment records on the USPTO
Executed onAssignorAssigneeConveyanceFrameReelDoc
MAINTENANCE FEES AND DATES:    Maintenance records on the USPTO
Date Maintenance Fee Events
Aug 02 2019BIG: Entity status set to Undiscounted (note the period is included in the code).
Aug 14 2019SMAL: Entity status set to Small.


Date Maintenance Schedule
Nov 23 20244 years fee payment window open
May 23 20256 months grace period start (w surcharge)
Nov 23 2025patent expiry (for year 4)
Nov 23 20272 years to revive unintentionally abandoned end. (for year 4)
Nov 23 20288 years fee payment window open
May 23 20296 months grace period start (w surcharge)
Nov 23 2029patent expiry (for year 8)
Nov 23 20312 years to revive unintentionally abandoned end. (for year 8)
Nov 23 203212 years fee payment window open
May 23 20336 months grace period start (w surcharge)
Nov 23 2033patent expiry (for year 12)
Nov 23 20352 years to revive unintentionally abandoned end. (for year 12)